This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: sSbcedMKSG5wSafex+K2MCsDOGszcgnqvES/rUmVzuc= Subject key identifier: A3:43:07:6B:5C:DE:7B:D2:E1:88:33:71:75:77:83:6E:ED:BF:68:F8 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 1BD7B2B5707E97AB5C628412E9CC8BB6959A6A93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 030D Signing time: Fri 05 Dec 2025 20:10:57 +0000 Manifest this update: Fri 05 Dec 2025 20:05:57 +0000 Manifest next update: Tue 09 Dec 2025 04:48:57 +0000 Files and hashes: 1: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 2: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 3: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 4: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: nIFwSCHHpV/PLOhhx4o0QyLEQH+20gpwDtaKPuzGlb0=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 04:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d7:b2:b5:70:7e:97:ab:5c:62:84:12:e9:cc:8b:b6:95:9a:6a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Dec 5 20:05:57 2025 GMT Not After : Dec 9 04:48:57 2025 GMT Subject: CN=A343076B5CDE7BD2E18833717577836EEDBF68F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:37:e3:60:49:2e:51:2d:9f:59:65:45:83:9a: 66:bb:38:02:54:77:9d:26:26:61:8c:13:e0:a5:cd: 4b:a3:c0:e9:b7:db:8a:9e:03:25:db:4a:0c:84:ed: 8b:b6:58:63:32:5c:bd:1f:d1:ed:d5:93:60:97:e0: 58:26:72:05:a1:56:da:76:64:d5:57:9b:9d:d7:3c: d6:0e:cb:3d:2d:3e:97:c4:82:4d:c2:aa:6b:9a:e5: 12:e5:ac:4e:ba:ca:7b:6e:98:f1:90:77:f0:67:08: bb:85:7e:bb:c4:b0:a4:64:b8:8a:cf:b8:1c:ad:1c: 2a:5c:29:92:09:ae:b7:7c:13:2f:ac:56:84:89:98: 5b:9f:76:df:83:68:a1:80:eb:73:29:6b:eb:cd:93: 64:2c:34:02:b9:c8:6f:f8:45:a2:9a:87:a1:6f:ea: 56:b7:f0:47:f9:b0:16:be:9b:86:4e:27:41:9b:0e: ea:a0:9c:e6:b1:ab:4a:50:1e:12:a6:9f:dd:7f:1a: 80:09:99:ac:b6:d0:87:83:ec:b2:5a:3b:36:32:bb: b2:0b:72:3d:2e:09:e2:9e:bb:23:2e:42:49:80:09: 33:cd:f5:b4:32:c2:7a:fb:5c:78:42:c1:78:1e:4d: 88:f2:8d:f7:ba:05:4c:06:22:a4:ce:a2:f2:eb:9a: 34:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:43:07:6B:5C:DE:7B:D2:E1:88:33:71:75:77:83:6E:ED:BF:68:F8 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:10:d0:3a:cc:a0:ad:68:17:49:6a:c3:ec:6a:6b:b8:e5:8d: ac:92:bc:ec:e4:a5:54:e6:c3:10:82:79:e3:51:e9:2c:ee:eb: 20:53:01:2c:80:84:c1:34:22:d5:50:f7:46:c4:1f:23:ca:2f: 9c:3e:e6:15:4c:dd:b0:d0:ed:da:0c:c6:8e:21:80:63:54:a7: 7b:80:57:ad:93:75:f2:4c:fb:e0:4b:81:e1:d5:96:a0:f3:f9: ea:c8:09:5c:5a:3a:e2:76:a9:6b:af:32:5c:52:6b:66:bc:24: f4:35:d4:9d:90:1a:c1:3a:ff:02:03:ef:0f:35:93:91:b3:b4: e7:5a:26:21:09:7e:a7:5c:23:f9:59:c4:d7:d6:2d:db:f9:eb: 76:06:68:e1:85:6e:d0:44:36:f1:e7:f2:a4:f7:91:a1:08:e1: 69:85:31:99:7e:04:18:68:0b:6e:6a:4f:52:70:fa:e0:3e:83: 46:8b:6e:6a:cc:16:b1:8e:2d:a7:e9:1c:e5:81:7a:a1:55:59: af:d2:bd:7d:05:95:42:fa:3a:96:b3:56:ff:eb:c1:94:c8:6f: b4:2e:cb:f1:f8:f8:86:49:6e:26:8d:d2:9b:1c:19:e0:9d:cf: ef:f0:62:3a:bb:51:f6:6a:8a:de:27:27:77:69:45:13:05:c3: 3b:80:89:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG9eytXB+l6tcYoQS6cyLtpWaapMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTEyMDUyMDA1NTdaFw0yNTEyMDkwNDQ4NTdaMDMxMTAvBgNV BAMTKEEzNDMwNzZCNUNERTdCRDJFMTg4MzM3MTc1Nzc4MzZFRURCRjY4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgN+NgSS5RLZ9ZZUWDmma7OAJU d50mJmGME+ClzUujwOm324qeAyXbSgyE7Yu2WGMyXL0f0e3Vk2CX4FgmcgWhVtp2 ZNVXm53XPNYOyz0tPpfEgk3Cqmua5RLlrE66yntumPGQd/BnCLuFfrvEsKRkuIrP uBytHCpcKZIJrrd8Ey+sVoSJmFufdt+DaKGA63Mpa+vNk2QsNAK5yG/4RaKah6Fv 6la38Ef5sBa+m4ZOJ0GbDuqgnOaxq0pQHhKmn91/GoAJmay20IeD7LJaOzYyu7IL cj0uCeKeuyMuQkmACTPN9bQywnr7XHhCwXgeTYjyjfe6BUwGIqTOovLrmjT3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo0MHa1zee9LhiDNxdXeDbu2/aPgwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEkQ0DrMoK1oF0lqw+xqa7jljaySvOzkpVTm wxCCeeNR6Szu6yBTASyAhME0ItVQ90bEHyPKL5w+5hVM3bDQ7doMxo4hgGNUp3uA V62TdfJM++BLgeHVlqDz+erICVxaOuJ2qWuvMlxSa2a8JPQ11J2QGsE6/wID7w81 k5GztOdaJiEJfqdcI/lZxNfWLdv563YGaOGFbtBENvHn8qT3kaEI4WmFMZl+BBho C25qT1Jw+uA+g0aLbmrMFrGOLafpHOWBeqFVWa/SvX0FlUL6OpazVv/rwZTIb7Qu y/H4+IZJbiaN0pscGeCdz+/wYjq7UfZqit4nJ3dpRRMFwzuAiaU= -----END CERTIFICATE-----Generated at Sat Dec 6 22:23:37 2025 by rpki-client